Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/oJSvDM6Y1Ux3vSZrIZNP5YHUlSE.roa
File: oJSvDM6Y1Ux3vSZrIZNP5YHUlSE.roa (raw, json)
Hash identifier: zZcbiUjEolIgOWyfacy7czjItelOusoJoC8zF+sYtMI=
Subject key identifier: A0:94:AF:0C:CE:98:D5:4C:77:BD:26:6B:21:93:4F:E5:81:D4:95:21
Certificate issuer: /CN=53b46ab79b9fc58f5dc4cf29d72dc5267ec3edde
Certificate serial: 0184F282FAAFF1A209A7E5C757AEFD604DA9
Authority key identifier: 53:B4:6A:B7:9B:9F:C5:8F:5D:C4:CF:29:D7:2D:C5:26:7E:C3:ED:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/oJSvDM6Y1Ux3vSZrIZNP5YHUlSE.roa
Signing time: Thu 08 Dec 2022 16:13:00 +0000
ROA not before: Thu 08 Dec 2022 16:13:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8075
IP address blocks: 2a13:5242::/32 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f2:82:fa:af:f1:a2:09:a7:e5:c7:57:ae:fd:60:4d:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b46ab79b9fc58f5dc4cf29d72dc5267ec3edde
Validity
Not Before: Dec 8 16:13:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a094af0cce98d54c77bd266b21934fe581d49521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:45:4d:81:19:88:b3:60:34:43:b3:aa:fa:3a:
40:60:63:b9:40:73:dc:b2:c5:65:d9:e4:c1:04:43:
50:a5:aa:6b:82:2a:34:cd:79:fa:14:1f:36:8b:72:
3d:d3:6e:60:17:05:1b:2f:23:50:1c:0b:d7:89:85:
67:32:5f:0a:d4:2a:95:43:f1:0f:58:d0:51:1b:a8:
df:d2:26:17:1d:5a:d7:7a:2a:29:76:4a:7e:d3:df:
67:db:f1:6b:87:68:31:4e:31:8f:2e:a2:99:ae:32:
e9:fe:3c:1c:a0:a5:b2:36:fb:2a:d3:ce:01:ae:63:
2d:d4:3d:ec:f3:e7:36:c6:c9:b9:c0:4d:4a:67:b5:
8b:f0:6b:89:62:24:df:11:29:c3:12:10:88:b6:bb:
0e:7c:9e:95:1b:c7:7b:64:f6:9b:a7:bc:4e:98:b3:
5d:90:2c:cd:85:ca:b2:a2:9a:f1:5c:06:9d:5e:4c:
6a:cb:98:3a:66:ad:a0:64:41:22:71:2c:95:bf:74:
6a:b2:a7:07:28:34:92:38:6b:49:6b:cc:98:41:cc:
a4:d9:e9:44:35:ac:c0:ae:62:69:13:04:e6:48:56:
00:c3:c1:02:bf:ca:ba:ba:f5:3a:cb:54:d5:e0:56:
d3:b8:37:31:08:ce:b3:b6:09:79:60:02:10:6e:a3:
90:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:94:AF:0C:CE:98:D5:4C:77:BD:26:6B:21:93:4F:E5:81:D4:95:21
X509v3 Authority Key Identifier:
keyid:53:B4:6A:B7:9B:9F:C5:8F:5D:C4:CF:29:D7:2D:C5:26:7E:C3:ED:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/oJSvDM6Y1Ux3vSZrIZNP5YHUlSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:5242::/32
Signature Algorithm: sha256WithRSAEncryption
02:ad:87:a8:a8:7f:12:f2:4e:74:9a:a4:38:bc:3c:a8:86:4a:
bc:33:e8:d9:b6:5d:90:4f:be:ad:1b:a2:7f:58:5d:65:c9:37:
5f:3e:5b:ca:fe:4b:13:3d:11:58:87:61:de:22:aa:57:df:83:
ad:94:29:8d:14:b7:94:d9:90:a9:c7:81:bc:9d:c1:d9:ae:67:
32:d2:ae:e0:d6:5b:d9:49:70:7e:82:64:4d:44:3f:a8:1d:64:
71:71:0a:cd:78:c7:6e:92:66:24:72:82:af:96:0a:46:78:da:
94:4e:47:2c:3e:e0:38:bc:44:53:b2:03:0c:02:a0:9e:eb:69:
3f:85:ad:9a:19:5e:4f:7a:04:b5:47:36:cb:86:3d:68:c8:57:
c2:5a:58:f5:87:96:cf:9a:8e:3c:8e:4c:d5:90:f8:f5:d7:38:
44:41:3f:bc:29:af:8a:4f:bf:d6:62:b2:08:09:1f:15:49:e2:
24:bb:68:4f:a2:3f:75:1b:d1:b8:88:e2:a3:df:df:96:eb:18:
30:03:dd:3f:af:34:b4:37:17:f4:2c:a8:a7:6d:f4:ef:a6:09:
d1:5a:7d:cb:93:b8:6d:8c:0b:10:cd:ad:fc:d9:9f:a6:0b:f9:
87:4b:64:7f:bc:27:80:9f:dd:6f:24:50:e9:32:1c:fb:db:6c:
40:93:17:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:03 2024 by rpki-client on console-ams.rpki-client.org